It’s not enough to tell your employees to create strong, unique passwords. You’ve got to actively manage and protect their login accounts, especially those belonging to privileged users. Many types of software can help you handle employee credentials to make your organization as safe and smooth-running as possible.

Microsoft updated the mitigation measures security teams should undertake for recently disclosed Exchange vulnerabilities that can lead to remote code execution after it was reported that previous measure can easily be bypassed.

This week’s healthcare data breach roundup is led by a cyberattack on Family Medical Center Services in Texas that compromised a large trove of patient data, and includes multiple cyberattacks and email-related security incidents.

CommonSpirit Health, the second-largest nonprofit hospital chain in the U.S., and multiple subsidiaries are dealing with systemic IT outages after a cyberattack.

"The Great SaaS Data Exposure" study by Varonis also finds that 81% of organizations had sensitive data exposed in the cloud.

Vietnamese security firm GTSC warned of an attack campaign using a new zero-day affecting Microsoft Exchange servers that can lead to remote code execution.

This week’s healthcare data breach roundup includes multiple hacking and data theft incidents, led by a hack and subsequent data theft at Physician’s Business Office in West Virginia.

Everyone agrees passwords are bad, but few organizations know how to move on from them to a passwordless solution. Here's how passwords fail, why it's hard to break up with passwords and why now is nonetheless the time to go passwordless.

Security researchers say email breach at large airline demonstrates that users are still a primary attack vector for threat actors.

Ride-sharing firm Uber released a statement late Monday blaming last week’s breach of its systems on the same hacking group responsible for a number of ransomware attacks.